A security researcher, Eaton Zveare, identified flaws in a carmaker's online dealership portal that risked exposing customer data and enabling unauthorized vehicle control. These vulnerabilities allowed the creation of an admin account, which provided unfettered access to sensitive personal and financial information. Zveare noted the challenge of finding these security flaws, which would permit hackers to track cars and alter functions remotely. While he does not plan to disclose the carmaker's identity, he emphasized the importance of addressing vulnerabilities in dealership systems that grant broad access to customer information.
Eaton Zveare, a security researcher, discovered flaws in a carmaker's online dealership portal that exposed customer data and could allow hackers to take control of vehicles.
The vulnerabilities enabled the creation of an admin account, granting unauthorized access to financial data, vehicle tracking, and remote control of car functions for hackers.
Collection
[
|
...
]